This is the mail archive of the
cygwin-apps
mailing list for the Cygwin project.
[SECURITY] p7zip: CVE-2015-1038
- From: Yaakov Selkowitz <yselkowitz at cygwin dot com>
- To: cygwin-apps at cygwin dot com
- Date: Fri, 29 Jan 2016 10:58:39 -0600
- Subject: [SECURITY] p7zip: CVE-2015-1038
- Authentication-results: sourceware.org; auth=none
Tony,
A directory traversal vulnerability has been reported in p7zip-15.09.
Could you please spin a new release with the following patch:
http://pkgs.fedoraproject.org/cgit/rpms/p7zip.git/plain/p7zip-15.09-CVE-2015-1038.patch
--
Yaakov